Protection des données

1. Responsible party and content of this privacy policy

We, Hotel Fafleralp AG, Faflerstrasse 2, 3919 Blatten, Switzerland, are the operators of the HIDEWAY RESORT FAFLERALP hotel (hotel) and the website www.fafleralp.ch (website) and, unless otherwise stated in this privacy policy, are responsible for the data processing described in this privacy policy.

Please read the following information so that you know what personal data we collect from you and for what purposes we use it. Our data protection policy is primarily based on the legal requirements of Swiss data protection law, in particular the Federal Act on Data Protection (FADP).

Please note that the following information is reviewed and amended from time to time. We therefore recommend that you review this privacy policy regularly. Furthermore, other companies are responsible for data processing under data protection law or are jointly responsible with us for individual data processing operations listed below, in which case the information provided by these providers is also relevant.

2. Contact person for data protection

If you have any questions about data protection or would like to exercise your rights, please contact our data protection officer by sending an email to the following address: direktion@faflerap.ch.

The contact person is Tatjana Jaggy c/o Hideaway Resort Fafleralp Faflerstrasse 2 3919 Blatten direktion@fafleralp.ch

3. Scope and purpose of the collection, processing and use of personal data

3.1

Data processing when contacting us

When you contact us via our contact addresses and channels (e.g. by e-mail or telephone), your personal data will be processed. The data you provide us with, such as your name, e-mail address or telephone number and your enquiry, will be processed. In addition, the time of receipt of the enquiry will be documented. We process this data in order to respond to your enquiry (e.g. providing information about our hotel, assisting with contract processing such as questions about your booking, incorporating your feedback into the improvement of our services, etc.).

We use a PMS from Huber & Kreuzeder OG, X Software Solutions, Hauptstraße 20, 5166 Perwang am Grabensee, Austria. Your data may therefore be stored in a database belonging to Huber & Kreuzeder OG, which may allow Huber & Kreuzeder OG to access your data if this is necessary for the provision of the software and for support in using the software. Information about the processing of data by third parties and any transfer abroad can be found in section 4 of this privacy policy.

3.2

Data processing when contacting us

3.2.1

Booking via our website

You can book accommodation on our website. We collect the following data for this purpose:
‍
− First name
− Surname
− Telephone number
− Email address
− Booking details
− Comments
− Confirmation that you have read and understood the booking conditions
− Confirmation that you have read and understood the terms and conditions and privacy policy and agree to them

We use the data to verify your identity before concluding a contract. We need your e-mail address to confirm your booking and for future communication with you that is necessary for the execution of the contract. We store your data together with the marginal data of the booking (e.g. room category, length of stay, name, price and characteristics of the services) and the details of the processing and fulfilment of the contract (e.g. receipt and handling of complaints) in our PMS (see section 4) so that we can ensure correct booking processing and contract fulfilment.

Insofar as this is necessary for the fulfilment of the contract, we will also pass on the necessary information to any third-party service providers (e.g. event organisers, transport companies).
The provision of data that is not marked as mandatory is voluntary. We process this data in order to tailor our offer to your personal needs as best as possible, to facilitate the processing of contracts, to contact you via an alternative communication channel if necessary with regard to the fulfilment of the contract, or for statistical recording and evaluation to optimise our offers.
We use a software application from simpleBOOKING Zucchetti Group, Via Lucca, 52-50142 – Florence, Italy, to provide the online shop. Therefore, your data may be stored in a database belonging to simpleBOOKING Zucchetti Group, which may allow simpleBOOKING Zucchetti Group to access your data if this is necessary for the provision of the software and for support in using the software. Information about the processing of data by third parties and any transfer abroad can be found in section 4 of this privacy policy.

The legal basis for this data processing is the fulfilment of a contract with you in accordance with Art. 6(1)(b) GDPR.

simpleBOOKING Zucchetti Group may wish to use some of this data for its own purposes (e.g. to send marketing emails or for statistical analysis). simpleBOOKING Zucchetti Group is responsible for this data processing and must ensure compliance with data protection laws in connection with this data processing. Information about data processing by simpleBOOKING Zucchetti Group can be found at https://www.simplebooking.it/ibe/hotelbooking/search?hid=6541 - Data protection.

3.2.2

Booking via a booking platform

If you make bookings via a third-party platform (i.e. via Booking, Lötschental Tourism, etc.), we receive various personal data from the respective platform operator in connection with the booking made. This is usually the data listed in section 4.1 of this privacy policy. In addition, enquiries about your booking may be forwarded to us. We will process this data by name in order to record your booking as requested and to provide the booked services.
Finally, we may exchange personal data with the platform operators in connection with disputes or complaints relating to a booking, insofar as this is necessary to protect our legitimate interests. This may also include data relating to the booking process on the platform or data relating to the booking or processing of services and your stay with us. We process this data to protect our legitimate claims and interests in the processing and maintenance of our contractual relationships with the following platform operators:
Processing and maintenance of our contractual relationships with the following platform operators: ‍
− Booking.com B.V., Oosterdokskade 163, 1011 DL, Netherlands. For more information about data processing in connection with Booking.com B.V., please visit https://www.booking.com/content/privacy.de.html
− TouristDataShop AG, rue du midi 3, 1860 Aigle, Switzerland. Further information about data processing in connection with Tourist Data Shop AG can be found at https://touristdatashop.ch/de/datenschutz.html

Your data is stored in the databases of the platform operators, which allows you to access your data. Information about the processing of data by third parties and any transfer abroad can be found in section 4 of this privacy policy.

3.3

Data processing during payment processing

3.3.1

Payment processing at the hotel

If you purchase products, obtain services or pay for your stay at our hotel using electronic means of payment, the processing of personal data is necessary. By using the payment terminals, you transmit the information stored in your payment method, such as the name of the cardholder and the card number, to the payment service providers involved (e.g. payment solution providers, credit card issuers and credit card acquirers). They also receive information that the payment method was used in our hotel, the amount and the time of the transaction. Conversely, we only receive the credit for the amount of the payment made at the relevant time, which we can assign to the relevant receipt number, or information that the transaction was not possible or was cancelled. Please always note the information provided by the respective company, in particular the privacy policy and the general terms and conditions.

3.4

Data processing during the recording and billing of services received

If you purchase services during your stay (e.g. additional nights, wellness, restaurant, activities), in addition to your contract data, the booking data (e.g. time and comments) and the data relating to the service booked and purchased (e.g. subject of the service, price and time of service use) will be recorded and further processed by us for the purpose of handling the service, as described in sections 3.2 and 3.3.

3.5

Data processing in email marketing

If you register for our marketing emails (e.g. by ticking the box on the registration form when you arrive at the hotel), the following data will be collected. Mandatory information is marked with an asterisk (*) during registration:
‍
− Email address
− Language
− First and last name

By registering, you consent to the processing of this data in order to receive marketing emails from us about our hotel and related information about products and services. These marketing emails may also include invitations to participate in competitions, provide feedback or evaluate our products and services. Collecting your title, first name and surname allows us to link your registration to any existing customer account and thus personalise the content of the marketing emails. Linking to a customer account allows us to make the offers and content contained in the marketing emails more relevant to you and better tailored to your potential needs.
We use your data to send marketing emails until you withdraw your consent. You can withdraw your consent at any time, in particular via the unsubscribe link contained in all marketing emails.

Our marketing emails may contain a so-called web beacon, 1x1 pixel (tracking pixel) or similar technical tools. A web beacon is an invisible graphic that is linked to the user ID of the respective subscriber. For each marketing email sent, we receive information about which email addresses it was successfully delivered to, which email addresses did not receive the marketing email, and which email addresses the delivery failed. It also shows which email addresses opened the marketing email, how long they were open, and which links were clicked. Finally, we also receive information about which subscribers have unsubscribed from the mailing list. We use this data for statistical purposes and to optimise the marketing emails in terms of frequency and timing of delivery, as well as the structure and content of the marketing emails. This enables us to better tailor the information and offers in our marketing emails to the individual interests of the recipients.
The web beacon is deleted when you delete the marketing emails. You can prevent the use of web beacons in our marketing emails by setting your email programme's parameters so that HTML is not displayed in messages. You can find information on how to configure this setting in the help section of your email software application, e.g. here for Microsoft Outlook.

By subscribing to marketing emails, you also consent to the statistical analysis of user behaviour for the purpose of optimising and adapting marketing emails.
We use a software application from Mailchimp, The Rocket Science Group, LLC, 675 Ponce de Leon Ave NE, Suite 5000, Atlanta, GA 30308 USA, to provide marketing emails. Therefore, your data may be stored in a database belonging to The Rocket Science Group, which may allow The Rocket Science Group to access your data if this is necessary for the provision of the software and for support in using the software. Information about the processing of data by third parties and any transfer abroad can be found in section 4 of this privacy policy.

You may revoke your consent at any time with future effect. The Rocket Science Group may wish to use some of this data for its own purposes (e.g. to send marketing emails or for statistical analysis). The Rocket Science Group is responsible for this data processing and must ensure compliance with data protection laws in connection with this data processing. Information about data processing by The Rocket Science Group can be found at https://www.intuit.com/privacy/statement/.

3.6

Data processing when using our WiFi network

At our hotel, you have the option of using the WiFi network operated by Swisscom (Switzerland) AG, Alte Tiefenaustrasse 6, 3050 Bern, Switzerland, free of charge. Registration is not necessary.

In addition to the above data, each time you use the WiFi network, data on the time and date of use, the network used and the end device are collected. You can revoke this consent at any time for the future.

Swisscom (Switzerland) AG is responsible for this data processing. When registering, you give your consent to Swisscom (Switzerland) AG and must accept the terms of use and privacy policy of Swisscom (Switzerland) AG.

3.7

Data processing for the fulfilment of legal reporting obligations

Upon arrival at our hotel, we may require the following information from you and your companions, whereby mandatory information is marked with an asterisk (*) on the corresponding form:
‍
− First name and surname
− Billing address
− Date of birth
− Nationality
− Identity card or passport (only for foreign nationals)
− Date of arrival and departure

We collect this information to comply with legal reporting requirements, particularly those arising from hospitality or police law. Where we are required to do so by applicable regulations, we forward this information to the relevant authorities.

3.8

Data processing for job applications

You have the option of applying to our company for a position either spontaneously or in response to a specific job advertisement. In this case, we will process the personal data you provide.
We use the data you provide to review your application and assess your suitability for employment. Application documents from unsuccessful applicants will be deleted after the application process has been completed, unless you explicitly agree to a longer retention period or we are legally obliged to retain them for a longer period.

4. Disclosure and transfer abroad

4.1

Disclosure to third parties and third-party access

Without the support of other companies, we would not be able to provide our services in the desired form. In order for us to use the services of these companies, it is necessary to disclose your personal data to them to a certain extent. Data is disclosed to selected third-party service providers and only to the extent necessary for the optimal provision of our services.

Various third-party service providers are already explicitly mentioned in this privacy policy. These are the following service providers:

− feratel media technologies AG, Maria-Theresien-Straße 8, A-6020 Innsbruck, Austria. Further information about data processing in connection with feratel media technologies AG can be found at https://www.feratel.com/datenschutz.html
− Lötschental Marketing AG, Dorfstrasse 80, CH-3918 Wiler, Switzerland. Further information about data processing in connection with Lötschental Marketing AG can be found at https://www.loetschental.ch/de/rechtliches/datenschutz
− Idea Creation GmbH, Walchestrasse 15, CH-8006 Zurich, Switzerland. Further information about data processing in connection with Idea Creation GmbH can be found at https://www.e-guma.ch/datenschutz/

Your data will also be passed on if this is necessary to fulfil the services you have requested, e.g. to restaurants or providers of other services for which you have made a reservation through us. For this data processing, the third-party service providers are responsible within the meaning of the Data Protection Act, not us. It is the responsibility of these third-party service providers to inform you about their own data processing – beyond the transfer of data for the provision of services – and to comply with data protection laws.
In addition, your data may be passed on, in particular to authorities, legal advisors or debt collection agencies, if we are legally obliged to do so or if this is necessary to protect our rights, in particular to enforce claims arising from our relationship with you. Data may also be disclosed if another company intends to acquire our company or parts thereof and such disclosure is necessary to perform due diligence or to complete the transaction.

4.2

Transfer of personal data abroad

We are also entitled to transfer your personal data to third parties abroad if this is necessary to carry out the data processing operations specified in this privacy policy. Individual data transfers have been mentioned above in section 3. In doing so, we naturally comply with the legal provisions governing the disclosure of personal data to third parties. The countries to which data is transferred include those that have an adequate level of data protection according to the decision of the Federal Council (such as the member states of the EEA), but also those countries (such as the USA) whose level of data protection is not considered adequate (see Annex 1 of the Data Protection Ordinance (DSV)). If the country in question does not have an adequate level of data protection, we ensure, unless an exception is specified for individual data processing in individual cases, that your data is adequately protected by these companies through appropriate safeguards. Unless otherwise specified, these are standard contractual clauses that can be found on the website of the Federal Data Protection and Information Commissioner (FDPIC). If you have any questions about the measures taken, please contact our data protection officer. Unless otherwise stated, these are standard contractual clauses that can be found on the website of the Federal Data Protection and Information Commissioner (FDPIC). If you have any questions about the measures taken, please contact our data protection officer (see section 2).

4.3

Information on data transfers to the United States

Some of the third-party service providers mentioned in this privacy policy are based in the USA. For the sake of completeness, we would like to point out to users residing or based in Switzerland or the EU that US authorities have surveillance measures in place that generally allow the storage of all personal data of all persons whose data has been transferred from Switzerland or the EU to the USA. This is done without differentiation, restriction or exception based on the objective pursued and without an objective criterion that would allow access by US authorities to the data and its subsequent use to be limited to very specific, strictly limited purposes that would justify the interference associated with both access to and use of this data. We would also like to point out that in the USA, affected persons from Switzerland or the EU have no legal remedies or effective judicial protection against the general access rights of US authorities, which allow them to obtain access to data concerning you and to have it corrected or deleted. We expressly draw your attention to this legal and factual situation in order to enable you to make an informed decision about consenting to the use of your data.
We would also like to point out to users residing in Switzerland or an EU member state that, from the perspective of the European Union and Switzerland, the United States does not have an adequate level of data protection, among other things due to the explanations provided in this section. Insofar as we have explained in this privacy policy that recipients of data (such as Google) are based in the United States, we will ensure through contractual arrangements with these companies and, where necessary, additional appropriate safeguards that your data is adequately protected by our third-party service providers.

5. Background data processing on our website

5.1

Data processing when visiting our website (log file data)

When you visit our website, the servers of our hosting provider Webflow, Inc., 398 11th Street, 2nd Floor, San Francisco, CA 94103, USA, temporarily store each access in a log file. The following data is collected without your intervention and stored by us until it is automatically deleted:

− IP address of the requesting computer
− Date and time of access
− Name and URL of the file accessed
− Website from which access was made, including any search terms used
− Operating system of your computer and the browser you are using (including type, version, and language settings)
− Device type in the case of access via mobile phones
− City or region from which access took place
− Name of your Internet access provider

This data is collected and processed for the purpose of enabling the use of our website (connection establishment), ensuring long-term system security and stability, and enabling error and performance analysis and optimization of our website (see also section 5.3 for the last points).
In the event of an attack on the website's network infrastructure or if other unauthorized or abusive use of the website is suspected, the IP address and other data will be evaluated for clarification and defense purposes and, if necessary, used in civil or criminal proceedings to identify the user concerned.

Finally, when you visit our website, we use cookies and applications and tools that are based on the use of cookies. In this context, the data described here may also be processed. You can find more detailed information on this in the following sections of this privacy policy, in particular section 7 below.

5.2

Google Custom Search Engine

This website uses the Programmable Search Engine from Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (Google) is used on this website. This enables us to provide you with an efficient search function on our website.

Pressing the Enter key or clicking on the search button activates the search function and the search results from Google are displayed on the search results page by means of an embed (iFrame). When the search results are retrieved, a connection is established with Google's servers and your browser may send the log file data listed in section 5.1 (including your IP address) and the search term you entered to Google. This may also involve data being transferred to servers abroad, e.g., in the USA (see sections 4.2 and 4.3, in particular regarding the lack of an adequate level of data protection and the guarantees provided).

For further processing of the data by Google, please refer to Google's privacy policy: www.google.com/intl/de_de/policies/privacy.

5.3

Tracking and web analysis tools

5.3.1

General information about tracking

We use the web analysis services listed below for the purpose of designing our website in line with user needs and continuously optimizing it. In this context, pseudonymized usage profiles are created and cookies are used (see also section 5.1). The information generated by the cookie about your use of this website is usually transferred to a server of the service provider together with the log file data listed in section 5.1, where it is stored and processed. This may also involve transfer to servers abroad, e.g., in the USA (see sections 4.2 and 4.3, in particular regarding the lack of an adequate level of data protection and the safeguards provided).

By processing the data, we obtain the following information, among other things:
‍
- Navigation path taken by a visitor on the site (including content viewed and products selected or purchased or services booked);
- Length of stay on the website or subpage;
- Subpage from which the website is exited;
- Country, region, or city from which access is made;
- Device (type, version, color depth, resolution, width, and height of the browser window); and
- Returning or new visitor.

On our behalf, the provider will use this information to evaluate the use of the website, in particular to compile website activity and to provide other services related to website and internet usage for the purposes of market research and the needs-based design of these websites. For these processing operations, we and the providers can be considered jointly responsible under data protection law to a certain extent.

The legal basis for this data processing with the following services is your consent within the meaning of Art. 6 (1) lit. GDPR. You can revoke your consent at any time or refuse processing by rejecting or disabling the relevant cookies in your web browser settings (see section ) or by making use of the service-specific options described below.

For further processing of the data by the respective provider as the (sole) controller under data protection law, in particular any disclosure of this information to third parties, such as authorities due to national legal regulations, please refer to the respective social media Facebook, Instagram, and LinkedIn.

5.3.2

Social media profiles

We have included links to our profiles on the social networks of the following providers on our website:

− Meta Platforms Inc., 1601 S California Ave, Palo Alto, CA 94304, USA, Privacy Policy

When you click on the social network icons, you will be automatically redirected to our profile on the respective network. This establishes a direct connection between your browser and the server of the respective social network. This provides the network with the information that you have visited our website with your IP address and clicked on the link. This may also involve data being transferred to servers abroad, e.g. in the USA (see sections 4.2 and 4.3, in particular regarding the lack of an adequate level of data protection and the safeguards provided).
If you click on a link to a network while you are logged into your user account with that network, the content of our website may be linked to your profile, allowing the network to associate your visit to our website directly with your account. If you want to prevent this, you should log out before clicking on the relevant links. A connection between your access to our website and your user account will be established in any case if you log in to the respective network after clicking on the link. The respective provider is responsible for data processing in accordance with data protection law. Please therefore note the data protection information on the network's website.

5.3.3

Social media plugins

On our website, you can use social media plugins from the providers listed below:

− Meta Platforms Inc., 1601 S California Ave, Palo Alto, CA 94304, USA, Privacy Policy

We use social media plugins to make it easier for you to share content from our website. Social media plugins help us increase the visibility of our content on social networks and thus contribute to better marketing.

The content of the plugin is transmitted directly from the social network to your browser and integrated into the website. This provides the respective provider with the information that your browser has accessed the corresponding page of our website, even if you do not have an account with this social network or are not currently logged in. This information (including your IP address) is transmitted directly from your browser to a server of the provider (usually in the USA) and stored there (see, in particular, sections 4.2 and 4.3 regarding the lack of an adequate level of data protection and the guarantees provided). We have no influence on the scope of the data that the provider collects with the plugin, although from a data protection perspective we can be considered jointly responsible with the providers to a certain extent.
If you are logged into the social network, it can directly associate your visit to our website with your user account. If you interact with the plugins, the corresponding information is also transmitted directly to a server of the provider and stored there. The information (e.g., that you like a product or service from us) may also be published on the social network and may be displayed to other users of the social network. The social network provider may use this information for the purpose of placing advertisements and designing the respective offer in line with demand. For this purpose, usage, interest, and relationship profiles may be created, e.g., to evaluate your use of our website with regard to the advertisements displayed to you on the social network, to inform other users about your activities on our website, and to provide other services related to the use of the social network. The purpose and scope of the data collection and the further processing and use of the data by the providers of the social networks, as well as your rights in this regard and setting options for protecting your privacy, can be found directly in the privacy policy of the respective provider.
If you do not want the social network provider to assign the data collected via our website to your user account, you must log out of the social network before activating the plugins. You can revoke your consent at any time by declaring your revocation to the plugin provider in accordance with the information in their privacy policy.

5.4

Online advertising and targeting

5.4.1

In general

We use the services of various companies to provide you with interesting offers online. Your usage behavior on our website and the websites of other providers is analyzed so that we can then display online advertising tailored to your individual needs.

Most technologies for tracking your usage behavior and displaying targeted advertising work with cookies, which allow your browser to be recognized across different websites. Depending on the service provider, it may also be possible for you to be recognized online even when using different devices (e.g., laptop and smartphone). This may be the case, for example, if you have registered for a service that you use on multiple devices.
In addition to the data already mentioned, which may be transmitted to companies participating in advertising networks when you visit websites (log file data, see section 5.1), the following data in particular is used to select the advertising that is most relevant to you:

- Information about yourself that you provided when registering or using a service from advertising partners (e.g., your gender, age group); and
- Usage behavior (e.g., search queries, interactions with advertising, types of websites visited, products or services viewed and purchased, newsletters subscribed to).

We and our service providers use this data to determine whether you belong to the target group we are addressing and take this into account when selecting advertisements. For example, after you have visited our site, you may see advertisements for the products or services you have consulted when you visit other sites (retargeting). Depending on the scope of the data, a usage profile may also be created, which is evaluated automatically, whereby the advertisements are selected according to the information stored in the profile, such as membership of certain demographic segments or potential interests or behaviors. Such advertisements may be displayed to you on various channels, including our website or app (as part of onsite and in-app marketing) as well as advertisements brokered by the online advertising networks we use, such as Google.
The data can then be evaluated for the purpose of billing the service provider and assessing the effectiveness of advertising measures in order to better understand the needs of our users and customers and improve future campaigns. This may also include information that an action (e.g., visiting certain sections of our websites or submitting information) can be attributed to a specific advertisement. We also receive aggregated reports from service providers on advertising activities and information about how you interact with our website and our advertisements.
You can revoke your consent at any time by rejecting or disabling the relevant cookies in your web browser settings (see section 5.1). Further options for blocking advertising can also be found in the information provided by the respective service provider, such as Google.

5.4.2

Google Ads

This website uses the services of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (Google) for online advertising, as explained in section 5.4.1. Google uses cookies for this purpose (see the list herehere.

You can revoke your consent at any time by rejecting or disabling the relevant cookies in your web browser settings (see section 5.1). Further options for blocking advertising can be found here.

6. Retention periods

We only store personal data for as long as is necessary to carry out the processing operations described in this privacy policy within the scope of our legitimate interests. In the case of contract data, storage is required by statutory retention obligations. Requirements that oblige us to retain data arise from accounting regulations and tax law provisions. According to these regulations, business communications, concluded contracts, and booking receipts must be retained for up to 10 years. If we no longer need this data to perform services for you, the data will be blocked. This means that the data may then only be used if this is necessary to fulfill the retention obligations or to defend and enforce our legal interests. The data will be deleted as soon as there is no longer any retention obligation or legitimate interest in its retention.

7. Data security

We use appropriate technical and organizational security measures to protect your personal data stored with us against loss and unlawful processing, namely unauthorized access by third parties. Our employees and the service providers we commission are bound by us to maintain confidentiality and protect data privacy. Furthermore, these persons are only granted access to personal data to the extent necessary to perform their tasks. Our security measures are continuously adapted in line with technological developments. However, the transmission of information via the Internet and electronic means of communication always involves certain security risks, and we therefore cannot provide an absolute guarantee for the security of information transmitted in this way.

8. Your rights

Provided that the legal requirements are met, you, as a data subject, have the following rights:

Right to information: You have the right to request access to your personal data stored by us at any time and free of charge if we process it. This allows you to check what personal data we process about you and whether we process it in accordance with the applicable data protection regulations.

Right to rectification: You have the right to have inaccurate or incomplete personal data corrected and to be informed of the correction. In this case, we will also inform the recipients of the data concerned about the adjustments we have made, unless this is impossible or involves disproportionate effort.

Right to erasure: You have the right to have your personal data erased under certain circumstances. In individual cases, particularly in the case of statutory retention obligations, the right to erasure may be excluded. In this case, the data may be blocked instead of erased, provided that the relevant conditions are met.

Right to restriction of processing: You have the right to request that the processing of your personal data be restricted.

Right to data portability: You have the right to receive the personal data you have provided to us in a readable format free of charge. Right to object: You can object to data processing at any time, in particular to data processing in connection with direct marketing (e.g., marketing emails).
Right of withdrawal: You have the right to withdraw your consent at any time. However, processing activities based on your consent in the past will not become unlawful as a result of your withdrawal.

To exercise these rights, please send us an email to the following address: direktion@fafleralp.ch. Right to lodge a complaint: You have the right to lodge a complaint with a competent supervisory authority, e.g., against the manner in which your personal data is processed.